Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/uckvPNn1--mjqL1M7vvn0Qvszzg.roa
File: uckvPNn1--mjqL1M7vvn0Qvszzg.roa (raw, json)
Hash identifier: Xd9hhkUEqj8ZeNdzh48IWrf2te8cerq4C05kLLTTmak=
Subject key identifier: B9:C9:2F:3C:D9:F5:FB:E9:A3:A8:BD:4C:EE:FB:E7:D1:0B:EC:CF:38
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1542
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/uckvPNn1--mjqL1M7vvn0Qvszzg.roa
Signing time: Tue 11 Feb 2025 23:44:29 +0000
ROA not before: Tue 11 Feb 2025 23:44:29 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17714
IP address blocks: 203.160.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5442 (0x1542)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:29 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B9C92F3CD9F5FBE9A3A8BD4CEEFBE7D10BECCF38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c2:e4:d5:a4:dc:ec:4c:db:a4:2d:77:63:4a:
0c:9e:b6:77:b8:13:bd:39:90:93:72:08:f5:c6:ad:
a2:78:5f:95:9f:b5:2c:12:1a:42:6f:0a:56:6c:e1:
77:71:95:c2:d0:7a:ff:fe:b2:c0:f3:5d:66:84:42:
f7:4f:f7:39:74:7a:02:dd:a8:ba:9c:a1:6c:ab:1b:
69:03:a6:8b:62:80:dd:df:1d:0e:62:b1:22:cc:3f:
e6:9e:88:54:84:9c:dd:3c:7a:c4:97:fa:b5:7f:4f:
27:37:90:bb:35:41:1f:01:b3:f1:63:99:4e:79:0a:
d6:1c:6a:c2:8e:5e:25:be:da:73:cf:23:ec:27:90:
47:9d:86:56:60:f8:f9:05:78:63:a3:54:88:8b:4b:
66:5e:1a:4c:e6:f5:b5:ae:f0:8b:f0:37:8f:91:3f:
38:d3:44:97:34:36:5a:bf:2f:5f:e3:9d:41:04:48:
c7:f3:81:5a:1b:81:b2:63:a1:c9:e8:94:11:27:35:
88:e1:d3:d0:19:27:1a:16:49:03:c7:fa:4e:99:63:
20:00:fc:2e:4c:8b:f2:8a:40:5e:4e:ad:0b:95:f2:
53:71:4a:45:57:1e:8f:5a:0a:53:0a:26:5f:70:91:
3c:c3:f5:d7:aa:24:f3:ab:e6:6a:be:06:ce:b1:08:
43:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:C9:2F:3C:D9:F5:FB:E9:A3:A8:BD:4C:EE:FB:E7:D1:0B:EC:CF:38
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/uckvPNn1--mjqL1M7vvn0Qvszzg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.237.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:64:59:fa:77:ca:18:e5:da:01:d1:c1:63:7b:a3:74:af:ac:
b3:b9:02:fe:85:ad:33:5e:23:ea:16:c5:bf:dc:32:b5:95:37:
3f:b0:7d:4a:3c:c0:d9:92:2a:00:40:13:34:74:a2:17:ad:31:
07:0f:1b:03:ec:aa:a2:62:c9:05:01:87:a1:d3:f8:0f:d1:68:
5a:81:8b:94:01:de:69:b3:54:75:60:c7:92:a3:d3:88:bb:4b:
c3:b3:32:df:5e:4e:66:54:68:fa:8b:d3:23:db:60:be:ad:68:
da:92:51:53:56:6e:73:e2:22:34:f4:7e:e4:40:90:a2:b3:72:
c5:1b:09:6e:57:a9:f5:84:a2:84:ce:09:f3:18:87:9c:ed:90:
92:4b:e4:09:2a:0c:ca:af:e7:54:8a:cf:7c:78:4a:3d:b9:e6:
35:1d:f9:6f:54:23:21:d1:b2:c1:a2:f9:18:f2:56:7e:d6:ac:
da:fe:7a:ce:79:8a:e4:97:b8:28:64:c0:b4:a4:a6:57:e9:f0:
64:e5:c1:a6:65:b4:ed:18:aa:0d:20:f2:f5:68:37:7b:7e:ab:
a7:44:d1:56:ea:a3:8d:d1:65:8a:57:94:90:86:c5:11:67:b8:
93:53:06:95:74:0f:8d:bc:29:90:18:a2:af:e4:0a:32:36:8e:
c2:e3:af:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:33:58 2025 by rpki-client